home

titancsetup_738ed6.exe

Playtech Software Installer

Playtech Software Limited

This is a setup and installation application. The file has been seen being downloaded from banner.titancasino.com and multiple other hosts.
Publisher:
Playtech  (signed by Playtech Software Limited)

Product:
Playtech Software Installer

Description:
Titan Casino

Version:
11.2.19.0

MD5:
6581f8eee4290cc2ccb4147f50be5196

SHA-1:
fddcf2f938201980571162ae9926146c1c741ad7

SHA-256:
95809b8d77929d489843cf5302d9a7c40e8d451b25fc5b4954b0be5cee0d0025

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 3:50:30 PM UTC  (today)

File size:
535.8 KB (548,696 bytes)

Product version:
11.2.19.0

Copyright:
Copyright (C) 2001-2009 Playtech

Original file name:
CasinoDownloader2.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\titancsetup_738ed6.exe

Digital Signature
Signed by:
Playtech Software Limited

Authority:
VeriSign, Inc.

Valid from:
10/26/2010 8:00:00 PM

Valid to:
10/26/2012 7:59:59 PM

Subject:
CN=Playtech Software Limited, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Playtech Software Limited, L=Douglas, S=Douglas, C=IM

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
00FCD6143B839A13601C8773341CE470

File PE Metadata
Compilation timestamp:
1/17/2012 10:22:45 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
12288:34A+EZUMKPMQEyJjy3LkTmIuDhMyb/ymb/sja:34BMK0ojy7ymBDhMyb/hb/sja

Entry address:
0x33CDC

Entry point:
B8, 30, 55, 5F, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, 3E, 2D, 3C, 85, 9C, 8A, 71, 7A, 23, E2, BA, FD, B9, 0B, E2, F6, C2, E0, C6, 42, 9A, 39, D4, 4C, 41, 8F, 5A, C4, 3D, C3, E4, 4D, 1C, 92, 23, 3F, 55, 0D, 0D, C2, 6D, A6, C5, FD, B3, 5E, 6D, CF, 7C, 0F, C3, 6D, BD, 88, A1, 00, 15, 6B, E5, 7B, 78, 08, 56, 72, 7D, 5B, 04, CF, E3, CA, 08, CC, C5, BD, 6F, 34, 4D, C7, 87, F3, 69, 75, 5C, 9C, 7D, C3, 0B, 75, 8E, 63, CB, 67, CC...
 
[+]

Entropy:
7.6140

Packer / compiler:
PECompact v2

Code size:
332 KB (339,968 bytes)

The file titancsetup_738ed6.exe has been seen being distributed by the following 2 URLs.

http://banner.titancasino.com/installer/.../TitanCSetup_bf1bb2.exe

http://banner.titancasino.com/installer/.../TitanCSetup_5e0ccd.exe

Scan titancsetup_738ed6.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.